CVE-2006-3666 Information

Description

SQL injection vulnerability in AjaxPortal 3.0 with magic_quotes_gpc disabled allows remote attackers to execute arbitrary SQL commands via the ‘Search’ field a different vulnerability than CVE-2006-3515.

Reference

http://secunia.com/advisories/20985 http://www.osvdb.org/27068 http://www.securityfocus.com/archive/1/439614 https://exchange.xforce.ibmcloud.com/vulnerabilities/27644